Data, Information Security and Insurance - Information Management Today

category general

Data

Information Security

Insurance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

UK Information Commissioner’s Office Fines Construction Company £4.4 Million for Breach of Security Obligations

Hunton Privacy

OCTOBER 25, 2022

On October 24, 2022, the UK Information Commissioner’s Office (“ICO”) issued a £4.4 million fine to Interserve Group Limited for failing to keep employee personal data secure, which violates Article 5(1)(f) and Article 32 of the EU General Data Protection Regulation (“GDPR”), during the period of March 2019 to December 2020.

Security

Security Personal data GDPR Insurance

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

Record Retention Policy for Businesses: A Strategic Guide to Compliance and Efficiency

Armstrong Archives

DECEMBER 19, 2023

No matter the size of a business, a well-defined record retention policy serves multiple purposes: ensuring compliance with legal and regulatory requirements, aiding in efficient document management, and securing sensitive information. First, identify the types of records your business generates and categorize them (e.g.,

Compliance

Compliance Archiving Digital transformation Sales

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

In good news for organisations handling personal information, China’s Personal Information Protection Law (“ PIPL ”) was finalised on 20 August 2021, and will come into force on 1 November 2021. To be clear, this is not China’s own GDPR.

Data Privacy

Data Privacy Privacy Compliance Analytics

New York Enacts Stricter Data Cybersecurity Laws

Data Matters

AUGUST 5, 2019

On July 25, 2019, Governor Cuomo signed the two bills into law, one which amended the state’s data breach notification law, and another that created additional obligations for data breaches at credit reporting agencies. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity

Cybersecurity Data breaches Privacy Risk

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Data Protection Report

FEBRUARY 21, 2018

As Data Protection Report posted on January 29, 2018 , lawmakers in Colorado are considering legislation that, if enacted, would significantly strengthen Colorado’s data privacy protections. The proposed bill overlaps with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and state privacy laws.

Data Privacy

Data Privacy Privacy Military Insurance

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

Data Privacy and Open Data: Secondary Uses under GDPR. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Privacy Data Privacy

U.S. states pass data protection laws on the heels of the GDPR

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). On the security front, as of March 2018, all 50 U.S. data protection laws that were passed in the last year.

GDPR

GDPR Data breaches Personal data Insurance

How to Develop an Incident Response Plan

eSecurity Planet

DECEMBER 9, 2021

Or as is often the case with security, what costs can we skip and still escape big penalties later? Unfortunately for those of us indulging in wishful thinking, the likelihood and costs of data breaches continue to increase. The Ponemon Institute estimates that data breach costs rose to an average cost of $4.24

Insurance

Insurance Ransomware Data breaches Cloud

Malaysian Data Protection Law Takes Effect

Hunton Privacy

NOVEMBER 19, 2013

On November 14, 2013, the Minister of the Malaysian Communications and Multimedia Commission (the “Minister”) announced that Malaysia’s Personal Data Protection Act 2010 (the “Act”) would be going into effect as of November 15, marking the end of years of postponements. The law imposes a number of generally applicable principles.

Personal data

Personal data Marketing Communications Insurance

NIST Releases Final Cybersecurity Framework

Hunton Privacy

FEBRUARY 12, 2014

Differences between the Framework and its preliminary version are generally editorial, and the Framework’s basic structure has remained substantially the same. The Framework issued today removes Appendix B and replaces it with a general description of privacy issues that entities should consider in the section on “How to Use the Framework.”.

Cybersecurity

Cybersecurity Risk Insurance Privacy

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

Hunton Privacy

JULY 11, 2017

On July 10, 2017, the Cyberspace Administration of China published a new draft of its Regulations on Protecting the Security of Key Information Infrastructure (the “Draft Regulations”), and invited comment from the general public. They must conduct this inspection and evaluation at least once a year.

Energy and Utilities

Energy and Utilities Security Cybersecurity Manufacturing

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. The stated purpose of the new law is to give people more control over their personal data and make it easier to access it. Did we mention big data? What do we expect in terms of enforcement priorities?

GDPR

GDPR Personal data Compliance Data breaches

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Network security architecture is a strategy that provides formal processes to design robust and secure networks. Effective implementation improves data throughput, system reliability, and overall security for any organization. or segregated as cloud or network attached storage (NAS).

Security

Security Cloud Cybersecurity Risk

Final Draft of EU AI Act Leaked

Hunton Privacy

FEBRUARY 1, 2024

General-purpose AI system” is separately defined under the AI Act as an “AI system which is based on a general-purpose AI model, that has the capability to serve a variety of purposes, both for direct use as well as for integration in other AI systems.” Providers will be subject to the majority of the AI Act’s requirements.

Risk

Risk Education Artificial Intelligence Insurance

CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

KnowBe4

MARCH 14, 2023

CyberheistNews Vol 13 #11 | March 14th, 2023 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears Robert Lemos at DARKReading just reported on a worrying trend. In a recent report, data security service Cyberhaven detected and blocked requests to input data into ChatGPT from 4.2%

Phishing

Phishing Security Artificial Intelligence Security awareness

Security Compliance & Data Privacy Regulations

UK Information Commissioner’s Office Fines Construction Company £4.4 Million for Breach of Security Obligations

Trending Sources

Record Retention Policy for Businesses: A Strategic Guide to Compliance and Efficiency

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

New York Enacts Stricter Data Cybersecurity Laws

Amended Colorado Bill Aims to Enhance Data Privacy Laws

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

U.S. states pass data protection laws on the heels of the GDPR

How to Develop an Incident Response Plan

Malaysian Data Protection Law Takes Effect

NIST Releases Final Cybersecurity Framework

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

GDPR is upon us: are you ready for what comes next?

Network Security Architecture: Best Practices & Tools

Final Draft of EU AI Act Leaked

CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

Stay Connected